Lucene search

K
LibreofficeLibreoffice

5 matches found

CVE
CVE
added 2012/11/19 12:10 p.m.221 views

CVE-2012-4233

LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org (OOo), allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted (1) odt file to vcllo.dll, (2) ODG (Drawing document) file to svxcorelo.dll, (3) PolyPolygon record in a .wmf (Window Meta...

4.3CVSS6.3AI score0.02511EPSS
CVE
CVE
added 2019/07/17 12:15 p.m.206 views

CVE-2019-9849

LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include remote resources within a document. A flaw existed w...

4.3CVSS6.4AI score0.0511EPSS
CVE
CVE
added 2015/11/10 5:59 p.m.105 views

CVE-2015-4551

LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from loca...

4.3CVSS7AI score0.05476EPSS
CVE
CVE
added 2014/08/27 12:55 a.m.74 views

CVE-2014-3575

The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data into documents via crafted OLE objects.

4.3CVSS6.5AI score0.01631EPSS
CVE
CVE
added 2011/10/21 6:55 p.m.65 views

CVE-2011-2713

oowriter in OpenOffice.org 3.3.0 and LibreOffice before 3.4.3 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers an out-of-bounds read in the DOC sprm parser.

4.3CVSS6AI score0.01541EPSS